ajohnson wrote:I'm giving you the benefit of the doubt since you've been a member here for awhile, but this sounds kind of sketchy...

cyber.spirit wrote:1- Can i use this payload against computers over the internet (i meam for systems with dynamic ipv4 address can i attack them?)

If you get written permission from the target system owner(s)...

Man since i sweared to help people i never did anything ilegal and im not gonna do it in future too i think it was better to tell u my scenario first

I have to PCs in two different places 1 of them runs bt5 its dual boot os with win xp i wanna use bt as attacker system and the other one run win7 with kaspersky both of them are connected to the internet not lan and i want to send the win7 pc a payload file via email so now what do u think is it possible

Last edited by cyber.spirit on Wed Aug 15, 2012 5:23 pm, edited 1 time in total.

So long as your router on the BT5 end is set to port forward whatever port you had your exploit use and BT5 is listening on, should be OK. Haven't tested that myself yet, just been doing stuff on my local LAN. Let us know if your AV picks anything up when you open your mail on the remote test boxes.

cyber.spirit wrote:I have to PCs in two different places 1 of them runs bt5 its dual boot os with win xp i wanna use bt as attacker system and the other one run win7 with kaspersky both of them are connected to the internet not lan and i want to send the win7 pc a payload file via email so now what do u think is it possible

Well to answer your question about sending the payload via email the best bet would be to create a malicious PDF and send it to the "user" on the windows 7 machine.

shadowzero wrote:If you own both computers, then just try it and find out what happens. Part of learning to hack is experimenting and seeing what the results are and interpreting them.

So u want me to drive a half of city to find out that im failed?! Man these systems are not in my local lab to switch between them easily.I just want to send the payload there if i get the result. Then i reinstall the os and av coz it has many problems now

cyber.spirit wrote:I have to PCs in two different places 1 of them runs bt5 its dual boot os with win xp i wanna use bt as attacker system and the other one run win7 with kaspersky both of them are connected to the internet not lan and i want to send the win7 pc a payload file via email so now what do u think is it possible

Well to answer your question about sending the payload via email the best bet would be to create a malicious PDF and send it to the "user" on the windows 7 machine.

shadowzero wrote:If you own both computers, then just try it and find out what happens. Part of learning to hack is experimenting and seeing what the results are and interpreting them.

So u want me to drive a half of city to find out that im failed?! Man these systems are not in my local lab to switch between them easily.

If your machine is already exposed to the internet such that you can attack it, then you can easily monitor its state remotely by setting up SSH, or even some remote desktop over VPN. Log in remotely, run your exploit, check to see if it worked.

Andrew Waite wrote:Giving the benefit of the doubt, if you've got a machine on the net that you can target with MSF as a test, others can too.

Strongly suggest killing the connection and leaving the vulnerable systems on internal labs only, if you need remote access openVPN etc. will be your friend....

shadowzero wrote:If your machine is already exposed to the internet such that you can attack it, then you can easily monitor its state remotely by setting up SSH, or even some remote desktop over VPN. Log in remotely, run your exploit, check to see if it worked.

Guys i just wanna learn more about msfpayload i know the risks and i todl you after this test i will renistall windows and av coz my system already has some problems (not security problems) and my system's ip address is dynamic how can yous openvpn or ssh??? besides i just want to learn msfpayload i dont need that